Advisories » MGASA-2017-0002

Updated libupnp packages fix security vulnerability

Publication date: 03 Jan 2017
Modification date: 03 Jan 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-8863

Description

Scott Tenaglia discovered a heap buffer overflow vulnerability, that can
lead to denial of service or remote code execution (CVE-2016-8863).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=19961
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8863

SRPMS

5/core

• libupnp-1.6.19-4.2.mga5